From 742861560d83fd85bfb13858e1711cde0b18910d Mon Sep 17 00:00:00 2001
From: Aiden Gerbrandt <aiden.gerbrandt@entropic.pro>
Date: Sun, 22 Mar 2026 21:34:43 -0500
Subject: [PATCH] added Visual Syslog

---
 README.md                |  1 +
 Software/VisualSyslog.md | 13 +++++++++++++
 2 files changed, 14 insertions(+)
 create mode 100644 Software/VisualSyslog.md

diff --git a/README.md b/README.md
index 7d0f7ff..82cd11b 100644
--- a/README.md
+++ b/README.md
@@ -11,6 +11,7 @@
    - [PostgreSQL](Software/Postgresql.md)
    - [VirtualBox](Software/VirtualBox.md)
    - [Virtual Machine Manager](Software/VirtualMachineManager.md) (virt-manager)
+   - [Visual Syslog](Software/VisualSyslog.md)
    - [VMWare Workstation](Software/VMWareWorkstation.md)
    - [Wireshark](Software/Wireshark.md)
 3. Tools
diff --git a/Software/VisualSyslog.md b/Software/VisualSyslog.md
new file mode 100644
index 0000000..9a3c8cc
--- /dev/null
+++ b/Software/VisualSyslog.md
@@ -0,0 +1,13 @@
+---
+Classes:
+  - Networking for Cybersecurity
+---
+
+# Visual Syslog
+Visual Syslog Server for Windows is a free open source program to receive and view syslog messages.
+
+Unfortunately this software is windows-only. 
+
+It does run in Wine/Bottles on linux but due to permissions you can't use low numbered ports (port 1024 and lower), and the default is 514. You can change the used port in the software, but the routers we used in this class would not let you change the port they were sending to. If that isn't an issue for you, see the [Wine Document](../Tools/Wine.md).
+
+Otherwise you will just have to run this inside a Windows VM and either pass-through your USB Ethernet Adapter, run the VM's network device in bridged mode, or forward port 514. The first option being the simplest by far.